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CLAIMS 

1. One or more computer-readable media having stored thereon a 
computer program that, when executed by one or more processors of a computing 
device, causes the one or more processors to perform acts including: 

transmitting a request for an enrollment certificate for a virtual private 
network to a registration authority operating independently of a certificate 
authority. 

2. One or more computer-readable media as recited in claim 1, wherein 
the computer program further causes the one or more processors to transmit 
additional requests regarding maintaining enrollment in the virtual private network 
to the registration authority. 

3. One or more computer-readable media as recited in claim 1, wherein 
the computing device comprises a router. 

4. A method implemented at a registration authority, the method 
comprising: 

receiving, from a device, a get certificate authority certificate request; 
generating a response including a certificate of the registration authority; 

and 

returning the response to the device. 
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5. A method as recited in claim 4, wherein the device comprises a 

router. 

6. A method as recited in claim 4, wherein the get certificate authority 
certificate request identifies a dynamically linked library (DLL) that is the 
registration authority. 

7. A method as recited in claim 4, wherein the response comprises a 
degenerated message. 

8. A method as recited in claim 4, wherein the response includes both a 
signing certificate of the registration authority and an encryption certificate of the 
registration authority. 

9. A method as recited in claim 4, wherein the response further includes 
a certificate chain of the certificate authority. 

10. One or more computer-readable media having stored thereon a 
plurality of instructions that, when executed by one or more processors at a 
registration authority, causes the one or more processors to perform acts including: 

receiving, from a device, a get certificate authority certificate request; 
generating a response including a certificate of the registration authority; 

and 

returning the response to the device. 
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11. One or more computer-readable media as recited in claim 10, 
wherein the device comprises a router. 

12. One or more computer-readable media as recited in claim 10, 
wherein the get certificate authority certificate request identifies a dynamically 
linked library (DLL) that is the registration authority. 

13. One or more computer-readable media as recited in claim 10, 
wherein the response comprises a degenerated message. 

14. One or more computer-readable media as recited in claim 10, 
wherein the response includes both a signing certificate of the registration 
authority and an encryption certificate of the registration authority. 

15. One or more computer-readable media as recited in claim 10, 
wherein the response further includes a certificate chain of the certificate 
authority. 
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